<html>
<head><meta charset="utf-8"><title>integer-overflow-rfc · wg-secure-code · Zulip Chat Archive</title></head>
<h2>Stream: <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/index.html">wg-secure-code</a></h2>
<h3>Topic: <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html">integer-overflow-rfc</a></h3>

<hr>

<base href="https://rust-lang.zulipchat.com">

<head><link href="https://rust-lang.github.io/zulip_archive/style.css" rel="stylesheet"></head>

<a name="157945199"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157945199" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Alex Gaynor <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157945199">(Feb 09 2019 at 20:54)</a>:</h4>
<p>Ok, first draft here: <a href="https://github.com/alex/rfcs/blob/usize-overflow/text/0000-usize-panic-overflow.md" target="_blank" title="https://github.com/alex/rfcs/blob/usize-overflow/text/0000-usize-panic-overflow.md">https://github.com/alex/rfcs/blob/usize-overflow/text/0000-usize-panic-overflow.md</a> I'd appreciate any and all feedback before I actually submit.</p>



<a name="157945624"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157945624" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Shnatsel <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157945624">(Feb 09 2019 at 21:06)</a>:</h4>
<p>Looks good to me, except the "4 vulnerabitilities seen thus far all use <code>usize</code>" does not feel like a sufficient rationale. Perhaps it would be worth noting that <code>usize</code> generally occurs when you're dealing with pointers and in-memory sizes, and does not make much sense otherwise.</p>



<a name="157945677"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157945677" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Alex Gaynor <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157945677">(Feb 09 2019 at 21:08)</a>:</h4>
<p>If there's more samples elsewhere, I'd love to review them :-)</p>



<a name="157946200"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157946200" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Shnatsel <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157946200">(Feb 09 2019 at 21:24)</a>:</h4>
<p>nothing in rust-fuzz trophy case at least</p>



<a name="157948904"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157948904" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Alex Gaynor <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157948904">(Feb 09 2019 at 22:46)</a>:</h4>
<p>Nor in the rustsec advisory DB</p>



<a name="157950830"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157950830" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Shnatsel <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157950830">(Feb 09 2019 at 23:43)</a>:</h4>
<p>I'm tempted to make a meme about the situation or something. How often is it that you're trying to secure something, and your problem is that you <em>don't have enough vulnerabilities?</em></p>



<a name="157950897"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157950897" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Shnatsel <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157950897">(Feb 09 2019 at 23:45)</a>:</h4>
<p>Judging by the track record so far, I'm pretty sure a bunch of them lurk in the stdlib, but my plan to extract them has hit a snag, see "automated fuzzing of stdlib" topic</p>



<a name="157989809"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/157989809" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Alex Gaynor <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#157989809">(Feb 10 2019 at 20:29)</a>:</h4>
<p>Well, it's submitted: <a href="https://github.com/rust-lang/rfcs/pull/2635" target="_blank" title="https://github.com/rust-lang/rfcs/pull/2635">https://github.com/rust-lang/rfcs/pull/2635</a> feedback very much appreciated</p>



<a name="158009987"></a>
<h4><a href="https://rust-lang.zulipchat.com#narrow/stream/146229-wg-secure-code/topic/integer-overflow-rfc/near/158009987" class="zl"><img src="https://rust-lang.github.io/zulip_archive/assets/img/zulip.svg" alt="view this post on Zulip" style="width:20px;height:20px;"></a> Tony Arcieri <a href="https://rust-lang.github.io/zulip_archive/stream/146229-wg-secure-code/topic/integer-overflow-rfc.html#158009987">(Feb 11 2019 at 06:34)</a>:</h4>
<p><span class="user-mention" data-user-id="127617">@Shnatsel</span> it's funny, that's a bit how I feel about RustSec. there were so many type confusion vulnerabilities in Ruby leading to remote code execution, and Rust has "sadly" eliminated many of those, so RustSec doesn't have the constant barrage of those to justify its existence</p>



<hr><p>Last updated: Aug 07 2021 at 22:04 UTC</p>
</html>